CN104462451B - The detection method and device of database file sensitive content - Google Patents

The detection method and device of database file sensitive content Download PDF

Info

Publication number
CN104462451B
CN104462451B CN201410779643.0A CN201410779643A CN104462451B CN 104462451 B CN104462451 B CN 104462451B CN 201410779643 A CN201410779643 A CN 201410779643A CN 104462451 B CN104462451 B CN 104462451B
Authority
CN
China
Prior art keywords
hash value
record
field
row
module
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201410779643.0A
Other languages
Chinese (zh)
Other versions
CN104462451A (en
Inventor
彭建芬
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
CEC CYBERSPACE GREAT WALL Co Ltd
Original Assignee
CEC CYBERSPACE GREAT WALL Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by CEC CYBERSPACE GREAT WALL Co Ltd filed Critical CEC CYBERSPACE GREAT WALL Co Ltd
Priority to CN201410779643.0A priority Critical patent/CN104462451B/en
Publication of CN104462451A publication Critical patent/CN104462451A/en
Application granted granted Critical
Publication of CN104462451B publication Critical patent/CN104462451B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/20Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
    • G06F16/24Querying
    • G06F16/245Query processing
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • G06F21/6227Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database where protection concerns the structure of data, e.g. records, types, queries
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2107File encryption

Abstract

The invention discloses a kind of detection method and device of database file sensitive content.This method includes:Parsing generation database table is carried out to file, database table records including n every trades, and record includes at least one field value per every trade, and n is positive integer;Calculate the Hash Value of current line record;Hash Value in the row Hash Value recorded calculated and the row record Hash Value table pre-set is matched, if determining to detect that file includes database file sensitive content when the match is successful.Present invention, avoiding the storage and distribution situation for leaking and understanding database file sensitive content of database file sensitive content.

Description

The detection method and device of database file sensitive content
Technical field
The present invention relates to field of computer technology, the more particularly to a kind of detection method and dress of database file sensitive content Put.
Background technology
With the raising of the level of informatization, enterprise more and more creates and handled sensitive file using computer, The danger that information is listened, intercepts and captures and illegally copied is also increased while convenient and swift, usual this document is business e-mail Breath.The situation is tense for the trade secret safety management faced in current enterprise operation, market competition, and especially enterprise is living in business Such as performance analysis material, service technique strategy, marketing program, financial analysis form, investment plan, the Ke Huxin used in dynamic The privacies such as breath, R & D Database and sensitive information resource.These Enterprise business confidential information frequent very first times are just by competition pair Hand obtains, and the business relations to company bring harm, the intellectual property of company is suffered a loss, and bring huge loss of assets, The reputation to company has undesirable effect simultaneously.
But in the prior art, also without one kind can effective detection go out this document and include database file sensitive content Scheme, so as to result in leaking for sensitive content.
The content of the invention
The present invention provides a kind of detection method and device of database file sensitive content, for avoiding database file quick Sense content leaks.
To achieve the above object, the invention provides a kind of detection method of database file sensitive content, including:
Parsing generation database table is carried out to file, the database table records including n every trades, and record is included extremely per every trade A few field value, the n is positive integer;
Calculate the Hash Value of current line record;
Hash Value in the row Hash Value recorded calculated and the row record Hash Value table pre-set is matched, Determine to detect that file includes database file sensitive content when if the match is successful;
If calculate row record Hash Value and pre-set row record Hash Value table in Hash Value matching not into During work(, the Hash Value of each field value of row record is calculated;
Will be miscellaneous in the Hash Value of each field value of the row calculated record and the field Hash Value table pre-set Value of gathering is matched, if calculating the Hash Value of next row record of current line when matching unsuccessful, and continues executing with described incite somebody to action The step of Hash Value in the Hash Value of the row record calculated and the row record Hash Value table pre-set is matched.
Alternatively, in addition to:
It is if miscellaneous in the Hash Value of each field value of the row record calculated and the field Hash Value table pre-set When gathering value the match is successful, database table mark corresponding to the Hash Value of matching, OK is inquired from the field Hash Value table Record identification and field identification;
Judge same database table mark and whether include detected rule with the field identification corresponding to a line record identification In storehouse the database table mark and the row record identification corresponding to whole field identifications, if so, determine detect file include number According to library file sensitive content;If it is not, the step of continuing executing with the Hash Value of next row record of the calculating current line.
Alternatively, also include before the Hash Value for calculating current line record:
Judge whether row record identification corresponding to current line record is more than n, if it is not, calculating current line described in continuing executing with The step of Hash Value of record;
Also include before the Hash Value of the next row record for calculating current line:
Judge whether row record identification corresponding to next row record of current line is more than n, if it is not, continuing executing with the meter The step of calculating the Hash Value of next row record of current line.
Alternatively, it is described that file is carried out after parsing generation database table also to include:
Normalization processing is carried out to the coded format of each field value in the database table.
To achieve the above object, the invention provides a kind of detection means of database file sensitive content, including:
Generation module, for carrying out parsing generation database table to file, the database table records including n every trades, often Every trade record includes at least one field value, and the n is positive integer;
Computing module, for calculating the Hash Value of current line record;
First matching module, for by the row calculated the Hash Value recorded and the row record Hash Value table pre-set Hash Value matched;
Determining module, if determining to detect that file includes database file when the match is successful for first matching module Sensitive content;
If the computing module be additionally operable to first matching module matching it is unsuccessful when, calculate each of row record The Hash Value of field value;
Second matching module, for the Hash Value of each field value for recording the row calculated and the word pre-set Hash Value in section Hash Value table is matched;
If the computing module is additionally operable to calculate next row of current line when the second matching module matching is unsuccessful The Hash Value of record, and trigger first matching module.
Alternatively, in addition to:
Enquiry module, if for second matching module the match is successful when, inquired from the field Hash Value table Database table mark, row record identification and field identification corresponding to the Hash Value of matching;
First judge module, for judge same database table mark and with a line record identification corresponding to field identification Whether including whole field identifications corresponding to database table mark in detected rule storehouse and the row record identification, if so, triggering The determining module;If it is not, triggering the computing module, recorded by next row of computing module calculating current line miscellaneous Gather value the step of.
Alternatively, in addition to:Second judge module;
Second judge module, for the computing module calculate current line record Hash Value before judge work as Whether the row record identification corresponding to record that moves ahead is more than n, if it is not, triggering the hash that the computing module calculates current line record Value;
Second judge module is additionally operable to judge row corresponding to next row record of current line in the computing module Whether record identification is more than n, if it is not, triggering the Hash Value that the computing module calculates next row record of current line.
Alternatively, in addition to:
Normalization module, for the generation module file is carried out parsing generation database table after to the data The coded format of each field value in the table of storehouse carries out normalization processing.
The invention has the advantages that:
In the detection method and device of the database file sensitive content that the present embodiment provides, current line record is calculated Hash Value, the Hash Value in the row Hash Value recorded calculated and the row record Hash Value table pre-set is matched, If determining to detect that file includes database file sensitive content when the match is successful, if calculating the row record when it fails to match The Hash Value of each field, by the Hash Value of each field value of the row calculated record and the field Hash Value pre-set Hash Value in table is matched, if calculating the Hash Value of next row record of current line when matching unsuccessful, and continues to hold The matching process of the Hash Value of the next row record of row, realizes effective detection and goes out this document including in database file sensitivity Hold, so as to avoid the storage and distribution situation for leaking and understanding database file sensitive content of sensitive content.
Brief description of the drawings
Fig. 1 is a kind of flow chart of the detection method for database file sensitive content that the embodiment of the present invention one provides;
Fig. 2 is a kind of flow chart of the detection method for database file sensitive content that the embodiment of the present invention two provides;
Fig. 3 is a kind of structural representation of the detection means for database file sensitive content that the embodiment of the present invention three provides Figure;
Fig. 4 is a kind of structural representation of the detection means for database file sensitive content that the embodiment of the present invention four provides Figure.
Embodiment
To make those skilled in the art more fully understand technical scheme, the present invention is carried below in conjunction with the accompanying drawings The detection method and device of the database file sensitive content of confession are described in detail.
Fig. 1 is a kind of flow chart of the detection method for database file sensitive content that the embodiment of the present invention one provides, such as Shown in Fig. 1, this method includes:
Step 101, parsing generation database table is carried out to file, database table records including n every trades, the record bag per every trade At least one field value is included, n is positive integer.
This step specifically may include:Parsing generation database is carried out to file according to data structure corresponding to this document type Table.
Step 102, the Hash Value for calculating current line record.
Step 103, by calculate row record Hash Value and pre-set row record Hash Value table in Hash Value Matched, if performing step 104 when the match is successful, if performing step 105 when matching unsuccessful.
Step 104, determination detect that file includes database file sensitive content, and flow terminates.
Preferably, after it is determined that detecting that file includes database file sensitive content, can also be recorded from the row Database table mark and the row record identification corresponding to the Hash Value of matching are inquired in Hash Value table.
In the present embodiment, determine that file includes sensitive content.If this document is captured on network, can prevent in time The transmission of file, so as to avoid leaking for sensitive content in file;If this document stores in terminal or server, can To find the storage and distribution situation of database file sensitive content in this way.
Step 105, the Hash Value for calculating each field value that the row records.
Step 106, by the Hash Value of each field value of the row calculated record and the field Hash Value that pre-sets Hash Value in table is matched, if performing step 107 when matching unsuccessful.
Step 107, the Hash Value that next row of current line records is calculated, and continue executing with step 103.
In the detection method for the database file sensitive content that the present embodiment provides, the hash of current line record is calculated Value, the Hash Value in the row Hash Value recorded calculated and the row record Hash Value table pre-set is matched, if Determine to detect that this document includes database file sensitive content during with success, if calculating the every of the row record when it fails to match The Hash Value of individual field, by the Hash Value of each field value of the row calculated record and the field Hash Value table pre-set In Hash Value matched, if calculating the Hash Value of next row record of current line when matching unsuccessful, and continue executing with The matching process of the Hash Value of next row record, realizing effective detection and going out this document includes database file sensitive content, So as to avoid leaking for sensitive content.
Fig. 2 is a kind of flow chart of the detection method for database file sensitive content that the embodiment of the present invention two provides, such as Shown in Fig. 2, this method includes:
Step 201, parsing generation database table is carried out to file, database table records including n every trades, the record bag per every trade At least one field value is included, n is positive integer.
In this step, because n is positive integer, therefore database table may include a line or more every trades record, remember per every trade Record is a record.It may include one or more field value in record per every trade, each field value can form a row.
In the present embodiment, each database table corresponds to a database table and identified, and the database table is identified for identifying The database table;Often row record corresponds to a row record identification, and the row record identification is used to identify row record;Each field Value corresponds to a field identification, and the field identification is used to identify the field value.Wherein, row record identification is the row of database table Number, field identification is the row number of field in database table.Wherein, n is total line number of the row record in database table.
The field in record is described by taking a row record as an example below.This is recorded as:
col 1:[3] c2 02 63, col 2:[6] 44 6f 6e 61 6c 64, col 3:[8]4f 43 6f 6e 6e 65 6c 6c。
This row record includes three field values.First character segment value is col 1:[3] c2 02 63, wherein, col 1 is The field identification of first character segment value, [3] represent that the field contents include 3 bytes, and c2 02 63 is specific field contents; Second field value is col 2:[6] 44 6f 6e61 6c 64, wherein, col 2 is the field identification of second field value, [6] represent that the field contents include 6 bytes, the 6c 64 of 44 6f 6e 61 are specific field contents;3rd field value be col 3:[8] the 6c 6c of 43 6f 6e 6e of 4f 65, wherein, col 3 is the field identification of the 3rd field value, and [8] represent should Field contents include 8 bytes, and the 6c 6c of 43 6f 6e 6e of 4f 65 are specific field contents.
Step 202, the coded format to each field value in database table carry out normalization processing.
If the coded format disunity of the field value in database table, the coded format progress to each field value is needed Normalization is handled, so that the coded format of all field values in database table is unified.Such as:Can will be in database table it is all The coded format of field value is unified for UFT8 coded formats.
Step 203, judge whether row record identification corresponding to current line record is more than n, if otherwise performing step 204, if It is that flow terminates.
The detection method of the database file sensitive content of the present embodiment is to use to judge with true capable record one by one Fixed whether to detect that file includes the method for database file sensitive content, then this step is judged whether by row record identification All rows record is judged, flow terminates if to all rows record judge, if unfinished pair The judgement of all row records then needs to perform step 204.
Step 204, the Hash Value for calculating current line record.
In the present embodiment, the Hash Value of current line record can be calculated by hash function, such as:Hash function can be SM3 or MD5.
Step 205, by calculate row record Hash Value and pre-set row record Hash Value table in Hash Value Matched, step 206 is performed if the match is successful, step 207 is performed if matching is unsuccessful.
In the present embodiment, multiple Hash Values are prestored in row record Hash Value table, then this step specifically may include:Look into Ask whether the row record Hash Value table pre-set includes the Hash Value identical Hash Value of the row record with calculating, if inquiry Going out the row record Hash Value table pre-set includes the Hash Value identical Hash Value of the row record with calculating, then it represents that matching Success;Otherwise, it means that matching is unsuccessful.
Step 206, determination detect that file includes database file sensitive content, and flow terminates.
Step 207, the Hash Value for calculating each field value that the row records.
In the present embodiment, the Hash Value of each field value can be calculated by hash function, such as:Hash function can be SM3 or MD5.
Step 208, by the Hash Value of each field value of the row calculated record and the field Hash Value that pre-sets Hash Value in table is matched, and step 209 is performed if the match is successful, and step 211 is performed if matching is unsuccessful.
In the present embodiment, the Hash Value of multiple field values is prestored in field Hash Value table, then this step specifically may be used Including:Inquire about whether the field Hash Value table pre-set includes the Hash Value phase of each field value of the row record with calculating Same Hash Value, if inquiring the miscellaneous of each field value of the field Hash Value table including the row record with calculating pre-set Gather value identical Hash Value, then it represents that the match is successful;Otherwise, it means that matching is unsuccessful.It is inquiring to remember with row that is calculating The quantity of the Hash Value identical Hash Value of each field value of record can be one or more, and inquire all miscellaneous Gathering all Hash Values that same a line that value can be located in same database table is not gone together either in record or inquired can position In disparate databases table.
Step 209, inquire from field Hash Value table database table mark corresponding to the Hash Value of matching, row record Mark and field identification.
This step specifically may include:Inquire database table mark corresponding to the Hash Value of each matching, row record mark Knowledge and field identification, in order to be able to know database table, row record and the field corresponding to the Hash Value of each matching Value.
Step 210, judge same database table mark and whether include with the field identification corresponding to a line record identification In detected rule storehouse the database table mark and the row record identification corresponding to whole field identifications, if then perform step 206, If otherwise perform step 211.
This step specifically may include:Database table mark, row record identification and the field inquired from above-mentioned steps 209 Mark selects same database table mark and the field identification corresponding to a line record identification, that is to say, that selects same Field in being recorded in one database table with a line.
Wherein, different Database Identifications and the field mark corresponding to row record identification are previously stored with detected rule storehouse Know.If judge same database table mark and include being somebody's turn to do in detected rule storehouse with the field identification corresponding to a line record identification Whole field identifications corresponding to database table mark and the row record identification, then show that file is included in database file sensitivity Hold;If judge same database table mark and do not include with the field identification corresponding to a line record identification in detected rule storehouse Whole field identifications corresponding to database table mark and the row record identification, then show that record is not corresponding to the row record identification Including database file sensitive content, the detection of next line record can be carried out in such cases.
Step 211, judge whether row record identification corresponding to the next record of current line is more than n, if otherwise performing step Rapid 212, if then flow terminates.
Step 212, the Hash Value that next row of current line records is calculated, and continue executing with step 205.
In the present embodiment, the Hash Value of next row record of current line can be calculated by hash function, such as:Hash Function can be SM3 or MD5.
In the detection method for the database file sensitive content that the present embodiment provides, the hash of current line record is calculated Value, the Hash Value in the row Hash Value recorded calculated and the row record Hash Value table pre-set is matched, if Determine to detect that file includes database file sensitive content during with success, if calculating each of the row record when it fails to match The Hash Value of field, by the Hash Value of each field value of the row calculated record and the field Hash Value table pre-set Hash Value matched, if calculating the Hash Value of next row record of current line when matching unsuccessful, and continue executing with down The matching process of the Hash Value of one row record, realizing effective detection and going out this document includes database file sensitive content, from And avoid leaking for sensitive content.Storage discovery of the database file sensitive content in terminal or server is can also be used for, from And understand the distribution situation of data assets.
Fig. 3 is a kind of structural representation of the detection means for database file sensitive content that the embodiment of the present invention three provides Figure, as shown in figure 3, the device includes:Generation module 11, computing module 12, the first matching module 13, determining module 14 and second Matching module 15.
Generation module 11 is used to carry out file parsing generation database table, and the database table records including n every trades, often Every trade record includes at least one field value, and the n is positive integer;Computing module 12 is used for the hash for calculating current line record Value;First matching module 13 records miscellaneous in Hash Value table for the row Hash Value recorded that will be calculated and the row pre-set Value of gathering is matched;Determine to detect that file includes database when the match is successful if determining module 14 is used for the first matching module 13 File sensitive content;If computing module 12 is additionally operable to the first matching module 13 when matching unsuccessful, the every of row record is calculated The Hash Value of individual field;The Hash Value of each field for the row record that second matching module 15 is used to calculate and in advance set Hash Value in the field Hash Value table put is matched;If computing module 12 be additionally operable to the second matching module 15 match it is unsuccessful When calculate current line next row record Hash Value, and trigger the first matching module 13.
Preferably, determining module 14 is determined after detecting that file includes database file sensitive content, can also be from institute State row and record database table mark and the row record identification inquired in Hash Value table corresponding to the Hash Value of matching.
In the detection means for the database file sensitive content that the present embodiment provides, the hash of current line record is calculated Value, the Hash Value in the row Hash Value recorded calculated and the row record Hash Value table pre-set is matched, if Determine to detect that file includes database file sensitive content during with success, if calculating each of the row record when it fails to match The Hash Value of field, by the Hash Value of each field value of the row calculated record and the field Hash Value table pre-set Hash Value matched, if calculating the Hash Value of next row record of current line when matching unsuccessful, and continue executing with down The matching process of the Hash Value of one row record, realizing effective detection and going out this document includes database file sensitive content, from And avoid leaking for sensitive content.
Fig. 4 is a kind of structural representation of the detection means for database file sensitive content that the embodiment of the present invention four provides Figure, as shown in figure 4, the device of the present embodiment also includes on the basis of above-described embodiment three:Enquiry module 16 and first judges Module 17.
If enquiry module 16 is used for the second matching module 15 when the match is successful, inquired from the field Hash Value table Database table mark, row record identification and field identification corresponding to the Hash Value matched somebody with somebody;First judge module 17 is used to judge together One database table identifies and whether includes the database table in detected rule storehouse with the field identification corresponding to a line record identification Whole field identifications corresponding to mark and the row record identification, if so, triggering determining module 14, is determined to detect by trigger module 14 Going out file includes database file sensitive content;If it is not, triggering computing module 12, the next of current line is calculated by computing module 12 The Hash Value of individual row record.
The device also includes:Second judge module 18.Second judge module 18 is used to calculate currently in computing module 12 Judge whether row record identification corresponding to current line record is more than n before the Hash Value of row record, if it is not, triggering computing module 12 Calculate the Hash Value of current line record.Second judge module 18 is additionally operable to judge in computing module 12 next row of current line Whether row record identification corresponding to record is more than n, if it is not, triggering computing module 12 calculates the miscellaneous of next row record of current line Gather value.
Further, the device also includes:Normalization module 19.Normalization module 19 is used in generation module 11 to file Carry out parsing generation database table and normalization processing is carried out to the coded format of each field value in database table afterwards.
In the detection means for the database file sensitive content that the present embodiment provides, the hash of current line record is calculated Value, the Hash Value in the row Hash Value recorded calculated and the row record Hash Value table pre-set is matched, if Determine to detect that file includes database file sensitive content during with success, if calculating each of the row record when it fails to match The Hash Value of field, by the Hash Value of each field value of the row calculated record and the field Hash Value table pre-set Hash Value matched, if calculating the Hash Value of next row record of current line when matching unsuccessful, and continue executing with down The matching process of the Hash Value of one row record, realizing effective detection and going out this document includes database file sensitive content, from And avoid leaking for sensitive content.
It is understood that the principle that embodiment of above is intended to be merely illustrative of the present and the exemplary implementation that uses Mode, but the invention is not limited in this.For those skilled in the art, the essence of the present invention is not being departed from In the case of refreshing and essence, various changes and modifications can be made therein, and these variations and modifications are also considered as protection scope of the present invention.

Claims (6)

  1. A kind of 1. detection method of database file sensitive content, it is characterised in that including:
    Parsing generation database table is carried out to file, the database table records including n every trades, and record includes at least one per every trade Individual field value, the n are positive integer;
    Calculate the Hash Value of current line record;
    Hash Value in the row Hash Value recorded calculated and the row record Hash Value table pre-set is matched, if Determine to detect that file includes database file sensitive content during with success;
    If the Hash Value matching in the Hash Value of the row record calculated and the row record Hash Value table pre-set is unsuccessful, Calculate the Hash Value of each field value of row record;
    By the Hash Value in the Hash Value of each field value of the row calculated record and the field Hash Value table pre-set Matched, if calculating the Hash Value of next row record of current line when matching unsuccessful, and continued executing with described by calculating The step of Hash Value in the Hash Value of the row record gone out and the row record Hash Value table pre-set is matched;
    If the Hash Value in the Hash Value of each field value of the row record calculated and the field Hash Value table pre-set When the match is successful, the database table mark corresponding to the Hash Value of matching is inquired from the field Hash Value table, row records Mark and field identification;
    Judge same database table mark and whether include with the field identification corresponding to a line record identification in detected rule storehouse Whole field identifications corresponding to database table mark and the row record identification, if so, determining to detect that file includes database File sensitive content;If it is not, the step of continuing executing with the Hash Value of next row record of the calculating current line.
  2. 2. the detection method of database file sensitive content according to claim 1, it is characterised in that described calculate is worked as The Hash Value recorded that moves ahead also includes before:
    Judge whether row record identification corresponding to current line record is more than n, recorded if it is not, continuing executing with the current line that calculates Hash Value the step of;
    Also include before the Hash Value of the next row record for calculating current line:
    Judge whether row record identification corresponding to next row record of current line is more than n, work as if it is not, continuing executing with the calculating The step of Hash Value of forward next row record.
  3. 3. the detection method of database file sensitive content according to claim 1, it is characterised in that described to enter to file Also include after row parsing generation database table:
    Normalization processing is carried out to the coded format of each field value in the database table.
  4. A kind of 4. detection means of database file sensitive content, it is characterised in that including:
    Generation module, for carrying out parsing generation database table to file, the database table records including n every trades, per every trade Record includes at least one field value, and the n is positive integer;
    Computing module, for calculating the Hash Value of current line record;
    First matching module, recorded for the row Hash Value recorded that will be calculated and the row pre-set miscellaneous in Hash Value table Value of gathering is matched;
    Determining module, if determining to detect that file includes database file sensitivity when the match is successful for first matching module Content;
    If the computing module be additionally operable to first matching module matching it is unsuccessful when, calculate each field of row record The Hash Value of value;
    Second matching module, it is miscellaneous for the Hash Value of each field value for recording the row calculated and the field pre-set The Hash Value to gather in value table is matched;
    If the computing module is additionally operable to calculate next row record of current line when the second matching module matching is unsuccessful Hash Value, and trigger first matching module;
    Also include enquiry module and the first judge module;
    Enquiry module, if for second matching module the match is successful when, inquire matching from the field Hash Value table Hash Value corresponding to database table mark, row record identification and field identification;
    First judge module, for judge same database table mark and with the field identification corresponding to a line record identification whether Including whole field identifications corresponding to database table mark in detected rule storehouse and the row record identification, if so, described in triggering Determining module;If it is not, triggering the computing module, the Hash Value of next row record of current line is calculated by the computing module The step of.
  5. 5. the detection means of database file sensitive content according to claim 4, it is characterised in that also include:Second Judge module;
    Second judge module, for the computing module calculate current line record Hash Value before judge current line Whether row record identification corresponding to record is more than n, if it is not, triggering the Hash Value that the computing module calculates current line record;
    Second judge module is additionally operable to judge row record corresponding to next row record of current line in the computing module Identify whether to be more than n, if it is not, triggering the Hash Value that the computing module calculates next row record of current line.
  6. 6. the detection means of database file sensitive content according to claim 4, it is characterised in that also include:
    Normalization module, for the generation module file is carried out parsing generation database table after to the database table In the coded format of each field value carry out normalization processing.
CN201410779643.0A 2014-12-15 2014-12-15 The detection method and device of database file sensitive content Active CN104462451B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201410779643.0A CN104462451B (en) 2014-12-15 2014-12-15 The detection method and device of database file sensitive content

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201410779643.0A CN104462451B (en) 2014-12-15 2014-12-15 The detection method and device of database file sensitive content

Publications (2)

Publication Number Publication Date
CN104462451A CN104462451A (en) 2015-03-25
CN104462451B true CN104462451B (en) 2017-12-05

Family

ID=52908486

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201410779643.0A Active CN104462451B (en) 2014-12-15 2014-12-15 The detection method and device of database file sensitive content

Country Status (1)

Country Link
CN (1) CN104462451B (en)

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104794204B (en) * 2015-04-23 2018-11-09 上海新炬网络技术有限公司 A kind of database sensitive data automatic identifying method
CN109472152B (en) * 2017-09-07 2020-11-06 中国移动通信集团广东有限公司 Data sensitivity detection method and server
CN107729456A (en) * 2017-09-30 2018-02-23 武汉汉思信息技术有限责任公司 Sensitive information search method, server and storage medium
CN110460583B (en) * 2019-07-15 2022-06-03 中国平安人寿保险股份有限公司 Sensitive information recording method and device and electronic equipment

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102354292A (en) * 2011-09-21 2012-02-15 国家计算机网络与信息安全管理中心 Method and system for checking consistency of records in master and backup databases
CN103309937A (en) * 2013-04-19 2013-09-18 无锡成电科大科技发展有限公司 Method of supervising content of cloud platform
CN103973708A (en) * 2014-05-26 2014-08-06 中电长城网际系统应用有限公司 Determination method and system for data breach event
CN103971061A (en) * 2014-05-26 2014-08-06 中电长城网际系统应用有限公司 Method and device for acquiring text file fingerprint and data management method
CN104123370A (en) * 2014-07-24 2014-10-29 杭州安恒信息技术有限公司 Method and system for detecting sensitive information in database

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8732473B2 (en) * 2010-06-01 2014-05-20 Microsoft Corporation Claim based content reputation service

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102354292A (en) * 2011-09-21 2012-02-15 国家计算机网络与信息安全管理中心 Method and system for checking consistency of records in master and backup databases
CN103309937A (en) * 2013-04-19 2013-09-18 无锡成电科大科技发展有限公司 Method of supervising content of cloud platform
CN103973708A (en) * 2014-05-26 2014-08-06 中电长城网际系统应用有限公司 Determination method and system for data breach event
CN103971061A (en) * 2014-05-26 2014-08-06 中电长城网际系统应用有限公司 Method and device for acquiring text file fingerprint and data management method
CN104123370A (en) * 2014-07-24 2014-10-29 杭州安恒信息技术有限公司 Method and system for detecting sensitive information in database

Also Published As

Publication number Publication date
CN104462451A (en) 2015-03-25

Similar Documents

Publication Publication Date Title
CN106062719B (en) It is analyzed according to the service measure for the structuring logging mode for using data
WO2020220638A1 (en) Method and apparatus for associating link system with log system, and storage medium
CN104462451B (en) The detection method and device of database file sensitive content
CN108062202A (en) A kind of file block storage method and system
CN108664480B (en) Multi-data-source user information integration method and device
US8412712B2 (en) Grouping methods for best-value determination from values for an attribute type of specific entity
CN105701096A (en) Index generation method, data inquiry method, index generation device, data inquiry device and system
KR20150084123A (en) Apparatus and method for detecting abnormal behavior
WO2020000743A1 (en) Webshell detection method and related device
WO2017101301A1 (en) Data information processing method and device
CN108809761A (en) Presence detection method and device
CN107844409A (en) Test example executing method and device
CN109446276B (en) Order interception method, device, equipment and medium based on relational data model
CN107220005A (en) A kind of data manipulation method and system
CN110019340A (en) Data storage/read method, apparatus and system
KR20130071617A (en) System and method for detecting variety malicious code
CN113591073B (en) Web API security threat detection method and device
JP6523799B2 (en) Information analysis system, information analysis method
JPWO2019168599A5 (en)
CN108449778A (en) A kind of wireless access point methods of exhibiting and device and terminal device
CN104935603A (en) Method for recognizing request and website server
US20150234932A1 (en) Terminal and contact lookup method
CN104951920B (en) service interface processing device and method
CN106446687B (en) Malicious sample detection method and device
CN114629690A (en) Equipment safety baseline compliance detection method and device and computer equipment

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant